Path Traversal Vulnerability in Adobe Animate
CVE-2026-48350

8.6HIGH

Key Information:

Vendor

Adobe

Vendor
CVE Published:
14 July 2026

What is CVE-2026-48350?

Adobe Animate is susceptible to a path traversal vulnerability that may enable an attacker to execute arbitrary code within the context of the affected user. This vulnerability occurs when the application fails to adequately restrict file access outside designated directories, allowing potential exposure to sensitive files. Exploitation of this weakness requires user interaction, as it necessitates the victim opening a specifically crafted file. Users are advised to remain vigilant and apply necessary updates to mitigate potential risks.

Affected Version(s)

Adobe Animate 2023 0 <= 23.0.15

Adobe Animate 2023 0 <= 23.0.15

Adobe Animate 2024 0 <= 24.0.13

References

CVSS V3.1

Score:
8.6
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Changed

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.